How to bypass the password protection of the official #Aadhaar #android #app in 1 minute.
For this attack, the attacker need a physical access to the phone, rooted phone is not needed and yes this is the latest version of the app.
cc @uidai @ceo_uidaipic.twitter.com/7aZ0fvr0Wv
-
-
Are you kidding me ? You want them to allot security to everyone so that their phone cannot be physically accesed by anyone ??? It's all about the OTP. They have given you a added security layer now it's on you to safeguard your device from unauthorized physical access.
-
What extra security you want ? Police protection. Because even if they allow 2 factor authentication where a pop-up will be generated whenever you access a aadhar login again anyone with physical access will be able to login. There is no winning here.
-
Dont give access to all data to a person, who can't handle it.
-
Totally agreed sir. The matter of discussion here was a security breach which can be done via some app.
-
The matter is why we are being pushed to mink all our secure items to one single entity which can be hacked if mobile is accessed. So if mobile is lost your entire privacy and accessibility to your own things can be compromised. May be upu can't even buy a new phone :)
-
I am not against or in favour of linking anything. Any which way the supreme court has ordered to defer all linking deadlines. I have linked all my accounts because i was sick of the notifications.
And i am sure my details won't get hacked. - 2 more replies
New conversation -
-
-
If you check old threads even this BJP was very concerned about it whn UPA was trying to implement it. Very vocal opposition which seems to have died down
-
Before 2014 our beloved PM also despised
#aadhar. Among the many jhumlas his sudden love for#aadhar is mind bogglingpic.twitter.com/eaJzZYSQRx
End of conversation
New conversation -
-
-
Are you serious? Even a 2 factor auth based on SMS OTP will not work here. For God's sake , you have that physical device with you. The only way it can be solved is if you enforce a RSA SecurToken or some other asymmetric key solution which is a practically impossible task.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Not using secure elements ?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.